forked from docs/doc-exports
Ru, Li Yi
73adfe6d50
Reviewed-by: Székely, Ond <ond.szekely@t-systems.com> Co-authored-by: Ru, Li Yi <liyiru7@huawei.com> Co-committed-by: Ru, Li Yi <liyiru7@huawei.com>
4.5 KiB
4.5 KiB
Configuring Security Group Rules
Scenarios
The default security group rule allows all outgoing data packets. ECSs and GeminiDB Cassandra instances in the same security group can access each other. After a security group is created, you can create different rules for that security group, which allows you to control access to the GeminiDB Cassandra instances that in it.
This section describes how to create a security group to enable specific IP addresses and ports to access GeminiDB Cassandra instances.
Precautions
- By default, you can create up to 500 security group rules. However, too many rules increase network latency for initial access, so it is recommended that you add no more than 50 rules for each security group.
- To access a GeminiDB Cassandra instance from resources outside the security group, you need to configure an inbound rule to allow access to the GeminiDB Cassandra instance.
Procedure
- Log in to the management console.
- Click
in the upper left corner and select a region and a project. - Click Service List. Under Network, click Virtual Private Cloud.
- In the navigation pane on the left, choose .
- On the Security Groups page, click the security group name.
- On the Inbound Rules tab, click Add Rule. In the displayed Add Inbound Rule dialog box, set required parameters to add inbound rules. On the Outbound Rules tab, click Add Rule. In the displayed Add Outbound Rule dialog box, set required parameters to add outbound rules.
- In the displayed dialog box, set required parameters.
- Click OK.